CVE-2017-18269
Published: 18 May 2018
An SSE2-optimized memmove implementation for i386 in sysdeps/i386/i686/multiarch/memcpy-sse2-unaligned.S in the GNU C Library (aka glibc or libc6) 2.21 through 2.27 does not correctly perform the overlapping memory check if the source memory range spans the middle of the address space, resulting in corrupt data being produced by the copy operation. This may disclose information to context-dependent attackers, or result in a denial of service, or, possibly, code execution.
Notes
Author | Note |
---|---|
sbeattie | introduced in glibc 2.21 |
Priority
Status
Package | Release | Status |
---|---|---|
eglibc Launchpad, Ubuntu, Debian |
artful |
Does not exist
|
bionic |
Does not exist
|
|
cosmic |
Does not exist
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
trusty |
Not vulnerable
(pre 2.21)
|
|
upstream |
Needs triage
|
|
xenial |
Does not exist
|
|
glibc Launchpad, Ubuntu, Debian |
artful |
Ignored
(end of life)
|
bionic |
Not vulnerable
(2.27-3ubuntu1)
|
|
cosmic |
Not vulnerable
(2.28-0ubuntu1)
|
|
disco |
Not vulnerable
(2.28-0ubuntu1)
|
|
eoan |
Not vulnerable
(2.28-0ubuntu1)
|
|
focal |
Not vulnerable
(2.28-0ubuntu1)
|
|
trusty |
Does not exist
|
|
upstream |
Released
(2.28)
|
|
xenial |
Released
(2.23-0ubuntu11.2)
|
|
Patches: upstream: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=cd66c0e584c6d692bc8347b5e72723d02b8a8ada (master) upstream: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=55ad82e45c313454de657931898e974a7a036cad (2.27) upstream: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=71d339cb86dc58aa511dd1544dad2c77d075069c (2.26) upstream: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=3f949b03473b4ca8b8e69a4e540511dfee39e493 (2.24) |
Severity score breakdown
Parameter | Value |
---|---|
Base score | 9.8 |
Attack vector | Network |
Attack complexity | Low |
Privileges required | None |
User interaction | None |
Scope | Unchanged |
Confidentiality | High |
Integrity impact | High |
Availability impact | High |
Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |